Alerts This Week
Warning Icon 1 483
Alerts This Week
Warning Icon 1 483

SUSE: 2020:2623-1 Important: Linux Kernel Update with Security Fixes

suse
Calendar Grey September 14, 2020
Dist Suse Esm H88
SUSE Security Update: Security update for the Linux Kernel _________________________________________
An update that solves 8 vulnerabilities and has 17 fixes is now available

Summary

The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-1749: Use ip6_dst_lookup_flow instead of ip6_dst_lookup (bsc#1165629). - CVE-2020-14314: Fixed a potential negative array index in do_split() (bsc#1173798). - CVE-2020-14356: Fixed a null pointer dereference in cgroupv2 subsystem which could have led to privilege escalation (bsc#1175213). - CVE-2020-14331: Fixed a missing check in vgacon scrollback handling (bsc#1174205). - CVE-2020-16166: Fixed a potential issue which could have allowed remote attackers to make observations that help to obtain sensitive information about the internal state of the network RNG (bsc#1174757). - CVE-2020-24394: Fixed an issue which could set incorrect permissions on

References

#1058115 #1071995 #1144333 #1154366 #1165629

#1171988 #1172428 #1172963 #1173798 #1173954

#1174205 #1174689 #1174699 #1174757 #1174784

#1174978 #1175112 #1175127 #1175213 #1175228

#1175515 #1175518 #1175691 #1175749 #1176069

Cross- CVE-2020-10135 CVE-2020-14314 CVE-2020-14331

CVE-2020-14356 CVE-2020-14386 CVE-2020-16166

CVE-2020-1749 CVE-2020-24394

Affected Products:

SUSE Linux Enterprise Live Patching 12-SP4

https://www.suse.com/security/cve/CVE-2020-10135.html

https://www.suse.com/security/cve/CVE-2020-14314.html

https://www.suse.com/security/cve/CVE-2020-14331.html

https://www.suse.com/security/cve/CVE-2020-14356.html

https://www.suse.com/security/cve/CVE-2020-14386.html

https://www.suse.com/security/cve/CVE-2020-16166.html

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2020:2623-1
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here